Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/hmefE34Bc3COREJHaI3ATcxdnwM.roa
File: hmefE34Bc3COREJHaI3ATcxdnwM.roa (raw, json)
Hash identifier: FqK9vN16WmOuRNtzLKbS7SZMAFPf25O1c/3NLqUQvXY=
Subject key identifier: 86:67:9F:13:7E:01:73:70:8E:44:42:47:68:8D:C0:4D:CC:5D:9F:03
Certificate issuer: /CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Certificate serial: 018CC2DB3EE0C6990FDE4A256BA2171E1BEA
Authority key identifier: 59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/hmefE34Bc3COREJHaI3ATcxdnwM.roa
Signing time: Mon 01 Jan 2024 02:29:57 +0000
ROA not before: Mon 01 Jan 2024 02:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210599
IP address blocks: 95.130.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:db:3e:e0:c6:99:0f:de:4a:25:6b:a2:17:1e:1b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=592e7c1f2394c3e3aaa8ccb647fd83671d6098b7
Validity
Not Before: Jan 1 02:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=86679f137e0173708e444247688dc04dcc5d9f03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:66:62:af:46:28:c5:9b:82:58:a6:2b:20:66:
e4:89:0e:da:d2:46:ab:3f:7d:ac:ee:d8:d5:14:37:
50:2d:f5:88:ed:8a:ac:14:1a:90:b8:04:a7:fc:f8:
c2:1d:6c:13:3b:71:3b:25:93:2e:13:72:2a:3d:ec:
4b:da:21:22:bd:15:c3:01:b9:91:47:e6:a8:14:59:
92:cb:80:57:b6:de:a8:d9:37:9a:2a:6d:19:55:da:
29:30:bc:07:a5:33:de:8b:37:10:fd:f5:f8:50:4e:
f0:92:a7:68:bd:eb:ca:f1:d9:97:34:41:79:d5:95:
9b:85:01:5c:63:9c:d6:aa:80:4f:c7:77:95:a8:be:
67:45:91:ae:1f:9b:d1:98:12:1c:76:63:6e:d0:34:
b7:e3:e2:db:4e:37:af:95:c8:bc:34:9a:4b:aa:fd:
12:b8:1a:6c:c2:d6:c8:41:6b:22:79:56:43:30:2f:
12:f2:35:9d:ee:3a:34:32:d5:34:c0:9c:0e:6a:1d:
e9:f9:f3:d4:fa:e5:df:e0:d3:18:f1:6d:17:98:f0:
48:69:3d:9c:20:79:0a:29:32:b9:df:4b:5c:57:12:
fe:59:55:64:02:47:e1:39:d9:18:f1:cb:35:0d:20:
91:a4:cf:07:27:53:cd:fd:72:bd:f2:83:9d:61:49:
21:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:67:9F:13:7E:01:73:70:8E:44:42:47:68:8D:C0:4D:CC:5D:9F:03
X509v3 Authority Key Identifier:
keyid:59:2E:7C:1F:23:94:C3:E3:AA:A8:CC:B6:47:FD:83:67:1D:60:98:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WS58HyOUw-OqqMy2R_2DZx1gmLc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/hmefE34Bc3COREJHaI3ATcxdnwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/9571d6-974f-4327-b9e0-443be63fc123/1/WS58HyOUw-OqqMy2R_2DZx1gmLc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.172.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:fd:a8:cb:7c:0c:c7:5d:96:36:3a:16:58:83:c1:48:16:c5:
48:a3:9c:3a:2e:98:e2:69:c8:88:3e:8a:2e:2f:aa:33:71:f6:
dc:69:a6:d8:c3:a1:ea:9b:7a:89:9e:35:e0:a5:25:d7:9b:cf:
6d:d0:be:0e:b1:ff:e6:b4:6f:5e:0d:fd:f4:f4:e4:c2:c6:2e:
e3:4c:18:a3:50:0a:49:8f:5d:d5:26:e7:b4:0a:d3:b7:26:0f:
03:4d:44:70:ae:01:e5:43:c7:41:59:20:9a:d7:fa:40:28:7c:
07:02:cd:d0:d1:ae:da:9b:f2:23:b6:7c:54:92:c7:f7:64:c0:
98:9f:0f:6b:50:2d:e3:37:ce:84:0f:31:bb:da:2a:00:36:9f:
5e:d6:fb:91:06:3c:f4:22:30:89:6a:56:b1:b3:a1:df:90:c9:
f3:59:17:e2:98:d4:ee:69:69:75:ed:11:fc:ac:79:10:6e:23:
7e:88:9b:34:d6:2b:9f:4e:ef:aa:fe:81:fa:0d:4f:df:cb:a5:
93:4c:fa:7a:82:12:d9:17:1a:3c:a4:70:2e:47:34:74:5e:d3:
f1:e0:32:68:5c:75:b4:c0:d0:be:d7:bc:5b:a4:96:33:e6:a4:
d7:62:ae:3f:76:4f:7b:d9:da:43:26:3b:d2:db:f3:56:33:e7:
71:3b:ac:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 15 03:08:23 2024 by rpki-client on console.sobornost.net